Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: php 8.4 support #66

Merged
merged 1 commit into from
Dec 5, 2024
Merged

feat: php 8.4 support #66

merged 1 commit into from
Dec 5, 2024

Conversation

lotyp
Copy link
Member

@lotyp lotyp commented Dec 5, 2024

No description provided.

@github-actions github-actions bot added type: enhancement For features and enhancements (feat) type: maintenance For maintenance, refactor and testing (perf, chore, style, revert, refactor, test, build, ci) labels Dec 5, 2024
@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:7fecefb52a8b031bb05ffa8bf4ccd0cffd132e5a2feb6d23a81b1c820e557548
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size110 MB
packages229
📦 Base Image oisupport/staging-amd64:8.2-alpine
also known as
  • 8.2-alpine3.20
  • 8.2-cli-alpine
  • 8.2-cli-alpine3.20
  • 8.2.26-alpine
  • 8.2.26-alpine3.20
  • 8.2.26-cli-alpine
  • 8.2.26-cli-alpine3.20
  • e6618bcb4dc3d497583c341cf50842bfee1dd689826c7c3fd0d224d6c20428be
digestsha256:f1aa64c5c255b6c15036a4defbb4f2e172ace0c289f878ddffafd1a054d0f3eb
vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile57th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:997f261e3bd2e7a6a7bb0c8896a1ee75ee0a72b5214bc0089827aa905b90f3a8
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size109 MB
packages229
📦 Base Image php:8.1-alpine
also known as
  • 8.1-alpine3.20
  • 8.1-cli-alpine
  • 8.1-cli-alpine3.20
  • 8.1.31-alpine
  • 8.1.31-alpine3.20
  • 8.1.31-cli-alpine
  • 8.1.31-cli-alpine3.20
digestsha256:3b5825d5d1a098c0452443cc05e7b5876b15ce2abd0ac1e4bc5d8e235cec56dc
vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile57th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is :8.2-alpine

Digest
Vulnerabilities
Size0 B
Packages0

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

✅ There are no tag recommendations at this time.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.1-alpine

Name8.1.31-alpine3.20
Digestsha256:3b5825d5d1a098c0452443cc05e7b5876b15ce2abd0ac1e4bc5d8e235cec56dc
Vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
Pushed2 weeks ago
Size38 MB
Packages50
Flavoralpine
OS3.20
Runtime8.1.31
The base image is also available under the supported tag(s): 8.1-alpine3.20, 8.1-cli-alpine, 8.1-cli-alpine3.20, 8.1.31-alpine, 8.1.31-alpine3.20, 8.1.31-cli-alpine, 8.1.31-cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

TagDetailsPushedVulnerabilities
8.4-alpine
Minor runtime version update
Also known as:
  • 8.4.1-cli-alpine
  • 8.4.1-cli-alpine3.20
  • 8.4-cli-alpine
  • 8.4-cli-alpine3.20
  • 8-cli-alpine
  • 8-cli-alpine3.20
  • cli-alpine
  • cli-alpine3.20
  • alpine
  • alpine3.20
  • 8.4.1-alpine
  • 8.4.1-alpine3.20
  • 8.4-alpine3.20
  • 8-alpine
  • 8-alpine3.20
 Benefits:
  • Same OS detected
  • Minor runtime version update
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 44 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.4.1
 2 weeks ago



8.3-alpine
Minor runtime version update
Also known as:
  • 8.3.14-cli-alpine
  • 8.3.14-cli-alpine3.20
  • 8.3-cli-alpine
  • 8.3-cli-alpine3.20
  • 8.3.14-alpine
  • 8.3.14-alpine3.20
  • 8.3-alpine3.20
 Benefits:
  • Same OS detected
  • Minor runtime version update
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 39 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.3.14
 2 weeks ago



8.2-alpine
Minor runtime version update
Also known as:
  • 8.2.26-cli-alpine
  • 8.2.26-cli-alpine3.20
  • 8.2-cli-alpine
  • 8.2-cli-alpine3.20
  • 8.2.26-alpine
  • 8.2.26-alpine3.20
  • 8.2-alpine3.20
 Benefits:
  • Same OS detected
  • Minor runtime version update
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
  • 8.2-alpine was pulled 1.8K times last month
Image details:
  • Size: 38 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.2.26
 2 weeks ago



@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:e866af380a81c06838f6342e28350f14927d0f91de13b1dec20d9b7e37ce7d74
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size105 MB
packages230
📦 Base Image php:8.1-fpm-alpine
also known as
  • 8.1-fpm-alpine3.20
  • 8.1.31-fpm-alpine
  • 8.1.31-fpm-alpine3.20
digestsha256:69436063285d24168a52d56cd97afc0316478a400bfd60abde89fb78b0e66b5c
vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile57th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.1-fpm-alpine

Name8.1.31-fpm-alpine3.20
Digestsha256:69436063285d24168a52d56cd97afc0316478a400bfd60abde89fb78b0e66b5c
Vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
Pushed2 weeks ago
Size34 MB
Packages51
Flavoralpine
OS3.20
Runtime8.1.31
The base image is also available under the supported tag(s): 8.1-fpm-alpine3.20, 8.1.31-fpm-alpine, 8.1.31-fpm-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

TagDetailsPushedVulnerabilities
8.3-fpm-alpine
Minor runtime version update
Also known as:
  • 8.3.14-fpm-alpine
  • 8.3.14-fpm-alpine3.20
  • 8.3-fpm-alpine3.20
 Benefits:
  • Same OS detected
  • Minor runtime version update
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 35 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.3.14
 2 weeks ago



8.2-fpm-alpine
Minor runtime version update
Also known as:
  • 8.2.26-fpm-alpine
  • 8.2.26-fpm-alpine3.20
  • 8.2-fpm-alpine3.20
 Benefits:
  • Same OS detected
  • Minor runtime version update
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
  • 8.2-fpm-alpine was pulled 4.1K times last month
Image details:
  • Size: 34 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.2.26
 2 weeks ago



8.4-fpm-alpine
Image has same number of vulnerabilities
Also known as:
  • 8.4.1-fpm-alpine
  • 8.4.1-fpm-alpine3.20
  • 8.4-fpm-alpine3.20
  • 8-fpm-alpine
  • 8-fpm-alpine3.20
  • fpm-alpine
  • fpm-alpine3.20
 Benefits:
  • Same OS detected
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 38 MB
  • Flavor: alpine
  • OS: 3.20
 2 weeks ago



@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:836be9c3a73c45351ba29bf4eeb08ef460abafa1d62d05c460ce35eb1f0e4bd6
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size129 MB
packages247
📦 Base Image php:8.3-alpine
also known as
  • 8.3-alpine3.20
  • 8.3-cli-alpine
  • 8.3-cli-alpine3.20
  • 8.3.14-alpine
  • 8.3.14-alpine3.20
  • 8.3.14-cli-alpine
  • 8.3.14-cli-alpine3.20
  • 9c490f0418962eb37325dbca89187520fa8489552ab8bc5c6d05b57e90bd33ee
digestsha256:5bfe2349274c938ac4bcafc821651db340d42878198547772ab2afe4b82da59f
vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile57th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:5085a0ebd40f00de9c6aea96d5f8c8380ace27680ca257f26600c5a157f5c23d
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size106 MB
packages230
📦 Base Image oisupport/staging-amd64:8.3-fpm-alpine
also known as
  • 8.3-fpm-alpine3.20
  • 8.3.14-fpm-alpine
  • 8.3.14-fpm-alpine3.20
  • d2cc575989489985e9a8cd2dca78d7c9937531385a2560eb1e20fa552d240aab
digestsha256:840d623bfcce1553661f6880df62048ca008d9cf1d9f626fcbabf1a2f1da6371
vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile57th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:9557c7ed0cffb0b28839ff131801bdc4e87f5e8997ee207f9ec3ebe5ab1e27c7
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size128 MB
packages247
📦 Base Image oisupport/staging-amd64:8.2-alpine
also known as
  • 8.2-alpine3.20
  • 8.2-cli-alpine
  • 8.2-cli-alpine3.20
  • 8.2.26-alpine
  • 8.2.26-alpine3.20
  • 8.2.26-cli-alpine
  • 8.2.26-cli-alpine3.20
  • e6618bcb4dc3d497583c341cf50842bfee1dd689826c7c3fd0d224d6c20428be
digestsha256:f1aa64c5c255b6c15036a4defbb4f2e172ace0c289f878ddffafd1a054d0f3eb
vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile57th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.3-alpine

Name8.3.14-alpine3.20
Digestsha256:5bfe2349274c938ac4bcafc821651db340d42878198547772ab2afe4b82da59f
Vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
Pushed2 weeks ago
Size39 MB
Packages50
Flavoralpine
OS3.20
Runtime8.3.14
The base image is also available under the supported tag(s): 8.3-alpine3.20, 8.3-cli-alpine, 8.3-cli-alpine3.20, 8.3.14-alpine, 8.3.14-alpine3.20, 8.3.14-cli-alpine, 8.3.14-cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

TagDetailsPushedVulnerabilities
8.4-alpine
Minor runtime version update
Also known as:
  • 8.4.1-cli-alpine
  • 8.4.1-cli-alpine3.20
  • 8.4-cli-alpine
  • 8.4-cli-alpine3.20
  • 8-cli-alpine
  • 8-cli-alpine3.20
  • cli-alpine
  • cli-alpine3.20
  • alpine
  • alpine3.20
  • 8.4.1-alpine
  • 8.4.1-alpine3.20
  • 8.4-alpine3.20
  • 8-alpine
  • 8-alpine3.20
 Benefits:
  • Same OS detected
  • Minor runtime version update
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 44 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.4.1
 2 weeks ago



@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is :8.3-fpm-alpine

Digest
Vulnerabilities
Size0 B
Packages0

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

✅ There are no tag recommendations at this time.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is :8.2-alpine

Digest
Vulnerabilities
Size0 B
Packages0

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

✅ There are no tag recommendations at this time.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:eada1c09f94945882c9521f656bb4349d0f3398839ac7833049b940b49f24d43
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size128 MB
packages247
📦 Base Image php:8.1-alpine
also known as
  • 8.1-alpine3.20
  • 8.1-cli-alpine
  • 8.1-cli-alpine3.20
  • 8.1.31-alpine
  • 8.1.31-alpine3.20
  • 8.1.31-cli-alpine
  • 8.1.31-cli-alpine3.20
digestsha256:3b5825d5d1a098c0452443cc05e7b5876b15ce2abd0ac1e4bc5d8e235cec56dc
vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile57th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:97e35849cb2a4b9a289f30fac01c69e728b9b0b7def34cb403d2b5f51dc72905
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size105 MB
packages230
📦 Base Image php:65c2fe3b5409e6e33ebc043e3d5094a3e7ff2ebb7621bf0af7dba98abd0ab561
also known as
  • 8.2-fpm-alpine
  • 8.2-fpm-alpine3.20
  • 8.2.26-fpm-alpine
  • 8.2.26-fpm-alpine3.20
digestsha256:a7ccee3d6a97214744e5249cb8bc570802b10f15cb58a57da818f6e7a8e67ba4
vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile57th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.1-alpine

Name8.1.31-alpine3.20
Digestsha256:3b5825d5d1a098c0452443cc05e7b5876b15ce2abd0ac1e4bc5d8e235cec56dc
Vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
Pushed2 weeks ago
Size38 MB
Packages50
Flavoralpine
OS3.20
Runtime8.1.31
The base image is also available under the supported tag(s): 8.1-alpine3.20, 8.1-cli-alpine, 8.1-cli-alpine3.20, 8.1.31-alpine, 8.1.31-alpine3.20, 8.1.31-cli-alpine, 8.1.31-cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

TagDetailsPushedVulnerabilities
8.4-alpine
Minor runtime version update
Also known as:
  • 8.4.1-cli-alpine
  • 8.4.1-cli-alpine3.20
  • 8.4-cli-alpine
  • 8.4-cli-alpine3.20
  • 8-cli-alpine
  • 8-cli-alpine3.20
  • cli-alpine
  • cli-alpine3.20
  • alpine
  • alpine3.20
  • 8.4.1-alpine
  • 8.4.1-alpine3.20
  • 8.4-alpine3.20
  • 8-alpine
  • 8-alpine3.20
 Benefits:
  • Same OS detected
  • Minor runtime version update
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 44 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.4.1
 2 weeks ago



8.3-alpine
Minor runtime version update
Also known as:
  • 8.3.14-cli-alpine
  • 8.3.14-cli-alpine3.20
  • 8.3-cli-alpine
  • 8.3-cli-alpine3.20
  • 8.3.14-alpine
  • 8.3.14-alpine3.20
  • 8.3-alpine3.20
 Benefits:
  • Same OS detected
  • Minor runtime version update
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 39 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.3.14
 2 weeks ago



8.2-alpine
Minor runtime version update
Also known as:
  • 8.2.26-cli-alpine
  • 8.2.26-cli-alpine3.20
  • 8.2-cli-alpine
  • 8.2-cli-alpine3.20
  • 8.2.26-alpine
  • 8.2.26-alpine3.20
  • 8.2-alpine3.20
 Benefits:
  • Same OS detected
  • Minor runtime version update
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
  • 8.2-alpine was pulled 1.8K times last month
Image details:
  • Size: 38 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.2.26
 2 weeks ago



@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.2-fpm-alpine

Name8.2.26-fpm-alpine3.20
Digestsha256:a7ccee3d6a97214744e5249cb8bc570802b10f15cb58a57da818f6e7a8e67ba4
Vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
Pushed2 weeks ago
Size34 MB
Packages51
Flavoralpine
OS3.20
Runtime8.2.26
The base image is also available under the supported tag(s): 8.2-fpm-alpine3.20, 8.2.26-fpm-alpine, 8.2.26-fpm-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

TagDetailsPushedVulnerabilities
8.3-fpm-alpine
Minor runtime version update
Also known as:
  • 8.3.14-fpm-alpine
  • 8.3.14-fpm-alpine3.20
  • 8.3-fpm-alpine3.20
 Benefits:
  • Same OS detected
  • Minor runtime version update
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 35 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.3.14
 2 weeks ago



8.4-fpm-alpine
Image has same number of vulnerabilities
Also known as:
  • 8.4.1-fpm-alpine
  • 8.4.1-fpm-alpine3.20
  • 8.4-fpm-alpine3.20
  • 8-fpm-alpine
  • 8-fpm-alpine3.20
  • fpm-alpine
  • fpm-alpine3.20
 Benefits:
  • Same OS detected
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 38 MB
  • Flavor: alpine
  • OS: 3.20
 2 weeks ago



@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:5ab8896ddb1689e3a83f9197b83395741360bdb0c1011da62f263accf9e12f28
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size111 MB
packages229
📦 Base Image php:8.3-alpine
also known as
  • 8.3-alpine3.20
  • 8.3-cli-alpine
  • 8.3-cli-alpine3.20
  • 8.3.14-alpine
  • 8.3.14-alpine3.20
  • 8.3.14-cli-alpine
  • 8.3.14-cli-alpine3.20
  • 9c490f0418962eb37325dbca89187520fa8489552ab8bc5c6d05b57e90bd33ee
digestsha256:5bfe2349274c938ac4bcafc821651db340d42878198547772ab2afe4b82da59f
vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile57th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.3-alpine

Name8.3.14-alpine3.20
Digestsha256:5bfe2349274c938ac4bcafc821651db340d42878198547772ab2afe4b82da59f
Vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
Pushed2 weeks ago
Size39 MB
Packages50
Flavoralpine
OS3.20
Runtime8.3.14
The base image is also available under the supported tag(s): 8.3-alpine3.20, 8.3-cli-alpine, 8.3-cli-alpine3.20, 8.3.14-alpine, 8.3.14-alpine3.20, 8.3.14-cli-alpine, 8.3.14-cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

TagDetailsPushedVulnerabilities
8.4-alpine
Minor runtime version update
Also known as:
  • 8.4.1-cli-alpine
  • 8.4.1-cli-alpine3.20
  • 8.4-cli-alpine
  • 8.4-cli-alpine3.20
  • 8-cli-alpine
  • 8-cli-alpine3.20
  • cli-alpine
  • cli-alpine3.20
  • alpine
  • alpine3.20
  • 8.4.1-alpine
  • 8.4.1-alpine3.20
  • 8.4-alpine3.20
  • 8-alpine
  • 8-alpine3.20
 Benefits:
  • Same OS detected
  • Minor runtime version update
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 44 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.4.1
 2 weeks ago



@lotyp lotyp force-pushed the feat/structure-updates branch from f815960 to 7d372e2 Compare December 5, 2024 20:12
@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:1ba545390259a389e7370965f315ef7c51c35414d75a3badbf1a596c52198a00
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size111 MB
packages229
📦 Base Image php:8.3-alpine
also known as
  • 8.3-alpine3.20
  • 8.3-cli-alpine
  • 8.3-cli-alpine3.20
  • 8.3.14-alpine
  • 8.3.14-alpine3.20
  • 8.3.14-cli-alpine
  • 8.3.14-cli-alpine3.20
  • 9c490f0418962eb37325dbca89187520fa8489552ab8bc5c6d05b57e90bd33ee
digestsha256:5bfe2349274c938ac4bcafc821651db340d42878198547772ab2afe4b82da59f
vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile57th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:aceb195328b99bd1599121be020770cdd58fffb67b14e2b734d20953af9d7dc7
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size105 MB
packages230
📦 Base Image php:65c2fe3b5409e6e33ebc043e3d5094a3e7ff2ebb7621bf0af7dba98abd0ab561
also known as
  • 8.2-fpm-alpine
  • 8.2-fpm-alpine3.20
  • 8.2.26-fpm-alpine
  • 8.2.26-fpm-alpine3.20
digestsha256:a7ccee3d6a97214744e5249cb8bc570802b10f15cb58a57da818f6e7a8e67ba4
vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile57th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.3-alpine

Name8.3.14-alpine3.20
Digestsha256:5bfe2349274c938ac4bcafc821651db340d42878198547772ab2afe4b82da59f
Vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
Pushed2 weeks ago
Size39 MB
Packages50
Flavoralpine
OS3.20
Runtime8.3.14
The base image is also available under the supported tag(s): 8.3-alpine3.20, 8.3-cli-alpine, 8.3-cli-alpine3.20, 8.3.14-alpine, 8.3.14-alpine3.20, 8.3.14-cli-alpine, 8.3.14-cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

TagDetailsPushedVulnerabilities
8.4-alpine
Minor runtime version update
Also known as:
  • 8.4.1-cli-alpine
  • 8.4.1-cli-alpine3.20
  • 8.4-cli-alpine
  • 8.4-cli-alpine3.20
  • 8-cli-alpine
  • 8-cli-alpine3.20
  • cli-alpine
  • cli-alpine3.20
  • alpine
  • alpine3.20
  • 8.4.1-alpine
  • 8.4.1-alpine3.20
  • 8.4-alpine3.20
  • 8-alpine
  • 8-alpine3.20
 Benefits:
  • Same OS detected
  • Minor runtime version update
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 44 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.4.1
 2 weeks ago



@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:b3db8b5cf095f75cc4df950bf40beaf891d19a845d00e52803666e85f45a35fb
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size109 MB
packages229
📦 Base Image php:8.1-alpine
also known as
  • 8.1-alpine3.20
  • 8.1-cli-alpine
  • 8.1-cli-alpine3.20
  • 8.1.31-alpine
  • 8.1.31-alpine3.20
  • 8.1.31-cli-alpine
  • 8.1.31-cli-alpine3.20
digestsha256:3b5825d5d1a098c0452443cc05e7b5876b15ce2abd0ac1e4bc5d8e235cec56dc
vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile57th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.2-fpm-alpine

Name8.2.26-fpm-alpine3.20
Digestsha256:a7ccee3d6a97214744e5249cb8bc570802b10f15cb58a57da818f6e7a8e67ba4
Vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
Pushed2 weeks ago
Size34 MB
Packages51
Flavoralpine
OS3.20
Runtime8.2.26
The base image is also available under the supported tag(s): 8.2-fpm-alpine3.20, 8.2.26-fpm-alpine, 8.2.26-fpm-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

TagDetailsPushedVulnerabilities
8.3-fpm-alpine
Minor runtime version update
Also known as:
  • 8.3.14-fpm-alpine
  • 8.3.14-fpm-alpine3.20
  • 8.3-fpm-alpine3.20
 Benefits:
  • Same OS detected
  • Minor runtime version update
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 35 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.3.14
 2 weeks ago



8.4-fpm-alpine
Image has same number of vulnerabilities
Also known as:
  • 8.4.1-fpm-alpine
  • 8.4.1-fpm-alpine3.20
  • 8.4-fpm-alpine3.20
  • 8-fpm-alpine
  • 8-fpm-alpine3.20
  • fpm-alpine
  • fpm-alpine3.20
 Benefits:
  • Same OS detected
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 38 MB
  • Flavor: alpine
  • OS: 3.20
 2 weeks ago



@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.1-alpine

Name8.1.31-alpine3.20
Digestsha256:3b5825d5d1a098c0452443cc05e7b5876b15ce2abd0ac1e4bc5d8e235cec56dc
Vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
Pushed2 weeks ago
Size38 MB
Packages50
Flavoralpine
OS3.20
Runtime8.1.31
The base image is also available under the supported tag(s): 8.1-alpine3.20, 8.1-cli-alpine, 8.1-cli-alpine3.20, 8.1.31-alpine, 8.1.31-alpine3.20, 8.1.31-cli-alpine, 8.1.31-cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

TagDetailsPushedVulnerabilities
8.4-alpine
Minor runtime version update
Also known as:
  • 8.4.1-cli-alpine
  • 8.4.1-cli-alpine3.20
  • 8.4-cli-alpine
  • 8.4-cli-alpine3.20
  • 8-cli-alpine
  • 8-cli-alpine3.20
  • cli-alpine
  • cli-alpine3.20
  • alpine
  • alpine3.20
  • 8.4.1-alpine
  • 8.4.1-alpine3.20
  • 8.4-alpine3.20
  • 8-alpine
  • 8-alpine3.20
 Benefits:
  • Same OS detected
  • Minor runtime version update
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 44 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.4.1
 2 weeks ago



8.3-alpine
Minor runtime version update
Also known as:
  • 8.3.14-cli-alpine
  • 8.3.14-cli-alpine3.20
  • 8.3-cli-alpine
  • 8.3-cli-alpine3.20
  • 8.3.14-alpine
  • 8.3.14-alpine3.20
  • 8.3-alpine3.20
 Benefits:
  • Same OS detected
  • Minor runtime version update
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 39 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.3.14
 2 weeks ago



8.2-alpine
Minor runtime version update
Also known as:
  • 8.2.26-cli-alpine
  • 8.2.26-cli-alpine3.20
  • 8.2-cli-alpine
  • 8.2-cli-alpine3.20
  • 8.2.26-alpine
  • 8.2.26-alpine3.20
  • 8.2-alpine3.20
 Benefits:
  • Same OS detected
  • Minor runtime version update
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
  • 8.2-alpine was pulled 1.8K times last month
Image details:
  • Size: 38 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.2.26
 2 weeks ago



@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:803042b614ebf4d4004830d142fc8aa39503e546dd1d137e737f866bb628166a
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size128 MB
packages247
📦 Base Image oisupport/staging-amd64:8.2-alpine
also known as
  • 8.2-alpine3.20
  • 8.2-cli-alpine
  • 8.2-cli-alpine3.20
  • 8.2.26-alpine
  • 8.2.26-alpine3.20
  • 8.2.26-cli-alpine
  • 8.2.26-cli-alpine3.20
  • e6618bcb4dc3d497583c341cf50842bfee1dd689826c7c3fd0d224d6c20428be
digestsha256:f1aa64c5c255b6c15036a4defbb4f2e172ace0c289f878ddffafd1a054d0f3eb
vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile57th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is :8.2-alpine

Digest
Vulnerabilities
Size0 B
Packages0

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

✅ There are no tag recommendations at this time.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:80be82a65fe265fcf5d04148b522fceff7c2090b2a72cdb92ee45588ef35a6b2
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size105 MB
packages230
📦 Base Image php:8.1-fpm-alpine
also known as
  • 8.1-fpm-alpine3.20
  • 8.1.31-fpm-alpine
  • 8.1.31-fpm-alpine3.20
digestsha256:69436063285d24168a52d56cd97afc0316478a400bfd60abde89fb78b0e66b5c
vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile57th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:8bb90bf9be3e6062776c1ef20ef52a95130ffe7920046fb84f50c5ad9d617b3e
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size128 MB
packages247
📦 Base Image php:8.1-alpine
also known as
  • 8.1-alpine3.20
  • 8.1-cli-alpine
  • 8.1-cli-alpine3.20
  • 8.1.31-alpine
  • 8.1.31-alpine3.20
  • 8.1.31-cli-alpine
  • 8.1.31-cli-alpine3.20
digestsha256:3b5825d5d1a098c0452443cc05e7b5876b15ce2abd0ac1e4bc5d8e235cec56dc
vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile57th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:c0b0ddce77bdc140319b91d1953c554337e0abf4cc9729d92e842c7566eb3543
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size106 MB
packages230
📦 Base Image oisupport/staging-amd64:8.3-fpm-alpine
also known as
  • 8.3-fpm-alpine3.20
  • 8.3.14-fpm-alpine
  • 8.3.14-fpm-alpine3.20
  • d2cc575989489985e9a8cd2dca78d7c9937531385a2560eb1e20fa552d240aab
digestsha256:840d623bfcce1553661f6880df62048ca008d9cf1d9f626fcbabf1a2f1da6371
vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile57th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.1-fpm-alpine

Name8.1.31-fpm-alpine3.20
Digestsha256:69436063285d24168a52d56cd97afc0316478a400bfd60abde89fb78b0e66b5c
Vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
Pushed2 weeks ago
Size34 MB
Packages51
Flavoralpine
OS3.20
Runtime8.1.31
The base image is also available under the supported tag(s): 8.1-fpm-alpine3.20, 8.1.31-fpm-alpine, 8.1.31-fpm-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

TagDetailsPushedVulnerabilities
8.3-fpm-alpine
Minor runtime version update
Also known as:
  • 8.3.14-fpm-alpine
  • 8.3.14-fpm-alpine3.20
  • 8.3-fpm-alpine3.20
 Benefits:
  • Same OS detected
  • Minor runtime version update
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 35 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.3.14
 2 weeks ago



8.2-fpm-alpine
Minor runtime version update
Also known as:
  • 8.2.26-fpm-alpine
  • 8.2.26-fpm-alpine3.20
  • 8.2-fpm-alpine3.20
 Benefits:
  • Same OS detected
  • Minor runtime version update
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
  • 8.2-fpm-alpine was pulled 4.1K times last month
Image details:
  • Size: 34 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.2.26
 2 weeks ago



8.4-fpm-alpine
Image has same number of vulnerabilities
Also known as:
  • 8.4.1-fpm-alpine
  • 8.4.1-fpm-alpine3.20
  • 8.4-fpm-alpine3.20
  • 8-fpm-alpine
  • 8-fpm-alpine3.20
  • fpm-alpine
  • fpm-alpine3.20
 Benefits:
  • Same OS detected
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 38 MB
  • Flavor: alpine
  • OS: 3.20
 2 weeks ago



@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.1-alpine

Name8.1.31-alpine3.20
Digestsha256:3b5825d5d1a098c0452443cc05e7b5876b15ce2abd0ac1e4bc5d8e235cec56dc
Vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
Pushed2 weeks ago
Size38 MB
Packages50
Flavoralpine
OS3.20
Runtime8.1.31
The base image is also available under the supported tag(s): 8.1-alpine3.20, 8.1-cli-alpine, 8.1-cli-alpine3.20, 8.1.31-alpine, 8.1.31-alpine3.20, 8.1.31-cli-alpine, 8.1.31-cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

TagDetailsPushedVulnerabilities
8.4-alpine
Minor runtime version update
Also known as:
  • 8.4.1-cli-alpine
  • 8.4.1-cli-alpine3.20
  • 8.4-cli-alpine
  • 8.4-cli-alpine3.20
  • 8-cli-alpine
  • 8-cli-alpine3.20
  • cli-alpine
  • cli-alpine3.20
  • alpine
  • alpine3.20
  • 8.4.1-alpine
  • 8.4.1-alpine3.20
  • 8.4-alpine3.20
  • 8-alpine
  • 8-alpine3.20
 Benefits:
  • Same OS detected
  • Minor runtime version update
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 44 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.4.1
 2 weeks ago



8.3-alpine
Minor runtime version update
Also known as:
  • 8.3.14-cli-alpine
  • 8.3.14-cli-alpine3.20
  • 8.3-cli-alpine
  • 8.3-cli-alpine3.20
  • 8.3.14-alpine
  • 8.3.14-alpine3.20
  • 8.3-alpine3.20
 Benefits:
  • Same OS detected
  • Minor runtime version update
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 39 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.3.14
 2 weeks ago



8.2-alpine
Minor runtime version update
Also known as:
  • 8.2.26-cli-alpine
  • 8.2.26-cli-alpine3.20
  • 8.2-cli-alpine
  • 8.2-cli-alpine3.20
  • 8.2.26-alpine
  • 8.2.26-alpine3.20
  • 8.2-alpine3.20
 Benefits:
  • Same OS detected
  • Minor runtime version update
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
  • 8.2-alpine was pulled 1.8K times last month
Image details:
  • Size: 38 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.2.26
 2 weeks ago



@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is :8.3-fpm-alpine

Digest
Vulnerabilities
Size0 B
Packages0

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

✅ There are no tag recommendations at this time.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:1c6f0e1d701bedbf89363fae56d9dd14d0a73af34c5c61929ff4398d63ada49c
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size129 MB
packages247
📦 Base Image php:8.3-alpine
also known as
  • 8.3-alpine3.20
  • 8.3-cli-alpine
  • 8.3-cli-alpine3.20
  • 8.3.14-alpine
  • 8.3.14-alpine3.20
  • 8.3.14-cli-alpine
  • 8.3.14-cli-alpine3.20
  • 9c490f0418962eb37325dbca89187520fa8489552ab8bc5c6d05b57e90bd33ee
digestsha256:5bfe2349274c938ac4bcafc821651db340d42878198547772ab2afe4b82da59f
vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile57th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:76499b9d507a18b765afd456c71106e0fce0e9355d27c26ee1ddc08992993a17
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size110 MB
packages229
📦 Base Image oisupport/staging-amd64:8.2-alpine
also known as
  • 8.2-alpine3.20
  • 8.2-cli-alpine
  • 8.2-cli-alpine3.20
  • 8.2.26-alpine
  • 8.2.26-alpine3.20
  • 8.2.26-cli-alpine
  • 8.2.26-cli-alpine3.20
  • e6618bcb4dc3d497583c341cf50842bfee1dd689826c7c3fd0d224d6c20428be
digestsha256:f1aa64c5c255b6c15036a4defbb4f2e172ace0c289f878ddffafd1a054d0f3eb
vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile57th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is :8.2-alpine

Digest
Vulnerabilities
Size0 B
Packages0

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

✅ There are no tag recommendations at this time.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.3-alpine

Name8.3.14-alpine3.20
Digestsha256:5bfe2349274c938ac4bcafc821651db340d42878198547772ab2afe4b82da59f
Vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
Pushed2 weeks ago
Size39 MB
Packages50
Flavoralpine
OS3.20
Runtime8.3.14
The base image is also available under the supported tag(s): 8.3-alpine3.20, 8.3-cli-alpine, 8.3-cli-alpine3.20, 8.3.14-alpine, 8.3.14-alpine3.20, 8.3.14-cli-alpine, 8.3.14-cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

TagDetailsPushedVulnerabilities
8.4-alpine
Minor runtime version update
Also known as:
  • 8.4.1-cli-alpine
  • 8.4.1-cli-alpine3.20
  • 8.4-cli-alpine
  • 8.4-cli-alpine3.20
  • 8-cli-alpine
  • 8-cli-alpine3.20
  • cli-alpine
  • cli-alpine3.20
  • alpine
  • alpine3.20
  • 8.4.1-alpine
  • 8.4.1-alpine3.20
  • 8.4-alpine3.20
  • 8-alpine
  • 8-alpine3.20
 Benefits:
  • Same OS detected
  • Minor runtime version update
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 44 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.4.1
 2 weeks ago



@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:d2a461d7aa8189f27a12bdd45a4d6b3418881841b0f5b43c154b4ddf41b25965
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size116 MB
packages229
📦 Base Image php:8-alpine
also known as
  • 8-alpine3.20
  • 8-cli-alpine
  • 8-cli-alpine3.20
  • 8.4-alpine
  • 8.4-alpine3.20
  • 8.4-cli-alpine
  • 8.4-cli-alpine3.20
  • 8.4.1-alpine
  • 8.4.1-alpine3.20
  • 8.4.1-cli-alpine
  • 8.4.1-cli-alpine3.20
  • alpine
  • alpine3.20
  • cli-alpine
  • cli-alpine3.20
  • db33346c0570ac13b47213e8a043fece5c6adf3ee623fd9510c2240e2dcd6e41
digestsha256:5a28a9586b767a3babf285b1bfe3dd7eda5b3ff64a5f79ce3fa93d076c022f60
vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile57th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024
edited
Loading

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8-alpine

Name8.4.1-alpine3.20
Digestsha256:5a28a9586b767a3babf285b1bfe3dd7eda5b3ff64a5f79ce3fa93d076c022f60
Vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
Pushed2 weeks ago
Size44 MB
Packages50
Flavoralpine
OS3.20
Runtime8.4.1
The base image is also available under the supported tag(s): 8-alpine3.20, 8-cli-alpine, 8-cli-alpine3.20, 8.4-alpine, 8.4-alpine3.20, 8.4-cli-alpine, 8.4-cli-alpine3.20, 8.4.1-alpine, 8.4.1-alpine3.20, 8.4.1-cli-alpine, 8.4.1-cli-alpine3.20, alpine, alpine3.20, cli-alpine, cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

✅ There are no tag recommendations at this time.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:06fe72230d124565efc9fda2672329ab80c88be2fd487349e0cbeadb9d1da882
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size134 MB
packages247
📦 Base Image php:8-alpine
also known as
  • 8-alpine3.20
  • 8-cli-alpine
  • 8-cli-alpine3.20
  • 8.4-alpine
  • 8.4-alpine3.20
  • 8.4-cli-alpine
  • 8.4-cli-alpine3.20
  • 8.4.1-alpine
  • 8.4.1-alpine3.20
  • 8.4.1-cli-alpine
  • 8.4.1-cli-alpine3.20
  • alpine
  • alpine3.20
  • cli-alpine
  • cli-alpine3.20
  • db33346c0570ac13b47213e8a043fece5c6adf3ee623fd9510c2240e2dcd6e41
digestsha256:5a28a9586b767a3babf285b1bfe3dd7eda5b3ff64a5f79ce3fa93d076c022f60
vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile57th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:ba36a43281ad76f7e712d3c63eac76b287c5cee62f187b958452a7d4db15394b
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size110 MB
packages230
📦 Base Image php:8-fpm-alpine
also known as
  • 8-fpm-alpine3.20
  • 8.4-fpm-alpine
  • 8.4-fpm-alpine3.20
  • 8.4.1-fpm-alpine
  • 8.4.1-fpm-alpine3.20
  • fpm-alpine
  • fpm-alpine3.20
digestsha256:fcc2fccfa511b898a78e97e8a978fa41d54242dd54b729f9f9b76ef1398a75ed
vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile17th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile57th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8-alpine

Name8.4.1-alpine3.20
Digestsha256:5a28a9586b767a3babf285b1bfe3dd7eda5b3ff64a5f79ce3fa93d076c022f60
Vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
Pushed2 weeks ago
Size44 MB
Packages50
Flavoralpine
OS3.20
Runtime8.4.1
The base image is also available under the supported tag(s): 8-alpine3.20, 8-cli-alpine, 8-cli-alpine3.20, 8.4-alpine, 8.4-alpine3.20, 8.4-cli-alpine, 8.4-cli-alpine3.20, 8.4.1-alpine, 8.4.1-alpine3.20, 8.4.1-cli-alpine, 8.4.1-cli-alpine3.20, alpine, alpine3.20, cli-alpine, cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

✅ There are no tag recommendations at this time.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 5, 2024

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8-fpm-alpine

Namefpm-alpine3.20
Digestsha256:fcc2fccfa511b898a78e97e8a978fa41d54242dd54b729f9f9b76ef1398a75ed
Vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
Pushed2 weeks ago
Size38 MB
Packages51
Flavoralpine
OS3.20
The base image is also available under the supported tag(s): 8-fpm-alpine3.20, 8.4-fpm-alpine, 8.4-fpm-alpine3.20, 8.4.1-fpm-alpine, 8.4.1-fpm-alpine3.20, fpm-alpine, fpm-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

TagDetailsPushedVulnerabilities
8.3-fpm-alpine
Minor runtime version update
Also known as:
  • 8.3.14-fpm-alpine
  • 8.3.14-fpm-alpine3.20
  • 8.3-fpm-alpine3.20
 Benefits:
  • Same OS detected
  • Minor runtime version update
  • Image is smaller by 3.3 MB
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 35 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.3.14
 2 weeks ago



8.2-fpm-alpine
Minor runtime version update
Also known as:
  • 8.2.26-fpm-alpine
  • 8.2.26-fpm-alpine3.20
  • 8.2-fpm-alpine3.20
 Benefits:
  • Same OS detected
  • Minor runtime version update
  • Image is smaller by 3.9 MB
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
  • 8.2-fpm-alpine was pulled 4.1K times last month
Image details:
  • Size: 34 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.2.26
 2 weeks ago



8.1-fpm-alpine
Minor runtime version update
Also known as:
  • 8.1.31-fpm-alpine
  • 8.1.31-fpm-alpine3.20
  • 8.1-fpm-alpine3.20
 Benefits:
  • Same OS detected
  • Minor runtime version update
  • Image is smaller by 4.3 MB
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
  • 8.1-fpm-alpine is the fourth most popular tag with 18K pulls per month
Image details:
  • Size: 34 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.1.31
 2 weeks ago



@lotyp lotyp merged commit 28ff101 into master Dec 5, 2024
19 checks passed
@lotyp lotyp deleted the feat/structure-updates branch December 5, 2024 20:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
type: enhancement For features and enhancements (feat) type: maintenance For maintenance, refactor and testing (perf, chore, style, revert, refactor, test, build, ci)
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@lotyp